Cybersecurity compliance behavior: Exploring the influences of individual decision style and other antecedents

Donalds, Charlette; Osei-Bryson, Kweku-Muata

doi:10.1016/j.ijinfomgt.2019.102056

Cited by 75 publications

(56 citation statements)

References 71 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…For effective cyber security and to ensure the protection of critical data stored with organizations, organizations need to implement and focus on technical aspects of the security as well as the factors that affect the user's adoption of technology and their behaviour towards compliance. Absence of information security awareness; non-compliance with cyber security policies and requirements; ignorance from the cyber best practices, its harms and benefits; carelessness towards following cyber practices and hygiene; laziness in following cyber security practices; hatred towards security; and obstruction, are the major causes of user mistakes (Avina et al 2017;Donalds and Osei-Bryson 2020). If the end-user and employees of the organization do not consider the importance of these policies and do not practices and follow these policies, then the organization will be at risk of cyber-attack or a data breach.…”

Section: Relationship Between Technology Adoption and Cyber Security Comentioning

confidence: 99%

“…Due to this, the individual or personal behaviour aspect of cyber security are also essential to be considered in overall cyber security posture. Several studies are carried out on the impact of behaviour on cyber security (Avina et al 2017;Donalds and Osei-Bryson 2020;Harris and Martin 2019).…”

Section: Relationship Between Technology Adoption and Cyber Security Comentioning

confidence: 99%

“…According to (Li et al 2019), they note that their colleagues' behaviour influences employees' behaviour in the field of cyber security as internal or external motivators. In organizational cyber security context, people usually tend to behave as their co-workers and friends (Chen, Chen, and Wu 2018;D'Arcy and Greene 2014;Donalds and Osei-Bryson 2020). In (Li et al 2019), the author's proposed Cues to action is an antecedent to cyber security behaviour, and cyber security behaviour directly leads to cyber security compliance, and 'use behaviour' is a significant construct of UTAUT2 model.…”

Section: Social Influencementioning

confidence: 99%

“…This may obstruct the overall development and implementation of egovernments. Therefore, these issues make cyber security very critical for e-government development and cyber security mechanisms will work effectively to prevent threats and reduce risks (D'Arcy and Greene 2014; Donalds and Osei-Bryson 2020;Harris and Martin 2019;Li et al 2019).…”

Section: Introductionmentioning

confidence: 99%

“…For effective cyber security compliance, users need to understand, take, and conform to the measures taken by the organization to secure its information so that companies can reap the benefits of their technology investments. In (Donalds and Osei-Bryson 2020;Li et al 2019) the authors concluded that employees' behavior has a direct relationship with effective information system security compliance.…”

Section: Introductionmentioning

confidence: 99%

See 4 more Smart Citations

Examining the Impact of Technical Controls, Accountability and Monitoring towards Cyber Security Compliance in E-government Organisations

Alqahtani¹,

Braun²

2021

Preprint

View full text Add to dashboard Cite

IT infrastructure and systems are made up of technical as well as social systems that work in alliance to ensure that organization's goals and objectives are met. Security controls and measures are developed and used to guard data and information systems of the organization. The breaches of Cyber security are primarily caused by the misuse of information systems and failure to comply with cyber security measures. Cyber security non-compliance is a major concern for organizations. For effective compliance and human acceptance of cyber security technology and complying with cyber practices, it is essential to ascertain, research, and examine the factors which contribute to the compliance and implementation of cyber security. This study has utilized an enhanced UTAUT2 i.e. Unified Theory of Acceptance and Use of Technology 2 model and assessed its relationship with cyber security compliance. Five new formal and informal factors that affect cyber security compliance in organizations are identified and evaluated. The research questions addressed are: how the formal factors of technical measures; accountability; monitoring and evaluation impact employee's behaviour towards cyber security compliance. The study comprises a correlational survey of employees working at e-government organizations in Saudi Arabia. Results indicate that there is a significant role play by technical measures; accountability; monitoring and evaluation, on employee attitudes and behaviour towards cyber security compliance.

show abstract

Section: Relationship Between Technology Adoption and Cyber Security Comentioning

confidence: 99%

Section: Relationship Between Technology Adoption and Cyber Security Comentioning

confidence: 99%

Section: Social Influencementioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

Examining the Impact of Technical Controls, Accountability and Monitoring towards Cyber Security Compliance in E-government Organisations

Alqahtani¹,

Braun²

2021

Preprint

View full text Add to dashboard Cite

show abstract

Does Ubuntu Influence Social Engineering Susceptibility?

Mokobane¹,

Botha²

2020

IFIP Advances in Information and Communication Technology

View full text Add to dashboard Cite

Ubuntu refers to living according to a set of values shared by people who believe in a certain way of life. The values of ubuntu include group solidarity, conformity, compassion, respect, human dignity, a humanistic orientation, and collective unity. Some people consciously live by ubuntu values while others do so unconsciously. Ubuntu is ingrained in human beings. The values of ubuntu in aggregate build trust, which inadvertently feeds into the social engineering approach used in information security attacks. Ubuntu appears to increase vulnerability to the success of a social engineering attack. Social engineering is a key threat to information security in many organizations. Social engineers target employees as human beings are naturally vulnerable.This study argues that ubuntu influences the success of social engineering attacks. It views ubuntu as foundational in making humans vulnerable to social engineers. The values that ubuntu is based on lead humans to trust, conform, be compassionate and loyal, and desire to help others. Social engineers exploit these values to obtain information, which they use to breach the information security of the targeted organization. Because of ubuntu, the extensive work of building rapport and elicitation, which would otherwise have been exhausting, is already completed and ready to be exploited by the social engineer. This paper exposes the potential influence of ubuntu on social engineering attacks. It concludes that security awareness, education and training programmes must be adapted to counter these influences and safeguard information assets.

show abstract

Human Characteristics and Genomic Factors as Behavioural Aspects for Cybersecurity

Ambrozaitytė

Brilingaitė

Bukauskas

et al. 2021

Augmented Cognition

View full text Add to dashboard Cite

Cybersecurity compliance behavior: Exploring the influences of individual decision style and other antecedents

Cited by 75 publications

References 71 publications

Examining the Impact of Technical Controls, Accountability and Monitoring towards Cyber Security Compliance in E-government Organisations

Examining the Impact of Technical Controls, Accountability and Monitoring towards Cyber Security Compliance in E-government Organisations

Does Ubuntu Influence Social Engineering Susceptibility?

Human Characteristics and Genomic Factors as Behavioural Aspects for Cybersecurity

Contact Info

Product

Resources

About